After configuring claims-based authentication on CRM, you will need to open the AD FS application and add a relying party trust. This is necessary for the AD FS to trust the CRM URLs used by external users. Each organization has a unique URL that the AD FS needs to trust.
If you have a multi-tenanted environment, every time you add a new organization you must manually update the relying part trust from the federation metadata if you want immediate access to your system via IFD, because AD FS only automatically updates this data every 24 hours. You can also do this programmatically or through PowerShell.
1. Open AD FS 2.0 by going to Start > Administrative Tools > AD FS Management.
2. Click the Add Relying ...